5 matches found
EUVD-2011-3626
Malware in sbrugna...
EUVD-2007-5019
Malware in sbrugna...
CVE-2024-45399
Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. In Indico prior to version 3.3.4, corresponding to Flask-Multipass prior to version 0.5.5, there is a Cross-Site-Scripting vulnerability during account creation when redirecting to the...
CVE-2023-6014
An attacker is able to arbitrarily create an account in MLflow bypassing any authentication requirment...
CVE-2025-32782 Ash Authentication email link auto-click account confirmation vulnerability
Ash Authentication provides authentication for the Ash framework. The confirmation flow for account creation currently uses a GET request triggered by clicking a link sent via email. Some email clients and security tools e.g., Outlook, virus scanners, and email previewers may automatically follow...